f082bb683a501437ed33fbaee24de5c215e32a8384e9e371a99d864600012233 | Triage

Sharing

General

Target

f082bb683a501437ed33fbaee24de5c215e32a8384e9e371a99d864600012233
Size

313KB
Sample

221123-hwaf6saa3s
MD5

75b070cf7e47e76a7714da19a7f679c3
SHA1

7a18a8f66073ce4f4b3900d1143f30f39d7a2c65
SHA256

f082bb683a501437ed33fbaee24de5c215e32a8384e9e371a99d864600012233
SHA512

fa9875c8dd5c4398a6b94e077d48d2f625aa17792b32e8cef73ef86840fd256496eb35e925507ccfb436b416e2e0f5fa2742fbd08d27dc8146a494789f163dbc
SSDEEP

6144:fro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94dS:frAu6/eIo4s1yR9lsc/adS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f082bb683a501437ed33fbaee24de5c215e32a8384e9e371a99d864600012233
- Size
  
  313KB
- MD5
  
  75b070cf7e47e76a7714da19a7f679c3
- SHA1
  
  7a18a8f66073ce4f4b3900d1143f30f39d7a2c65
- SHA256
  
  f082bb683a501437ed33fbaee24de5c215e32a8384e9e371a99d864600012233
- SHA512
  
  fa9875c8dd5c4398a6b94e077d48d2f625aa17792b32e8cef73ef86840fd256496eb35e925507ccfb436b416e2e0f5fa2742fbd08d27dc8146a494789f163dbc
- SSDEEP
  
  6144:fro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94dS:frAu6/eIo4s1yR9lsc/adS
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2